This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4111 Views
  • 0 replies
  • 0 Likes

PAN-OS 8.1.3 in production environment?

Anyone running 8.1.3 in prod? I have a change window to upgrade this weekend from 8.0.3 to 8.1.x as we wish to make use of the split tunnel by URL feature in GP, but reddit has filled me with some horror stories

welly_59 by L3 Networker
  • 4404 Views
  • 7 replies
  • 1 Likes

Resolved! Pan(w)achrome stats collecting?

Hello folks, We are going to be moving datacenter soon and changing our ISP. We plan to consider a 1Gbps Internet line coming in. Not sure of exact upload vs. download at the moment. In preparation, I am being asked to characterize our traffic, comparison, from a speed/bitrate perspective. It seems like Pan(w)achrome gives great stats, but ha...

OMatlock by L4 Transporter
  • 3595 Views
  • 3 replies
  • 0 Likes

Resolved! DOS protection alert test

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClL3CAK I am using the above linked KB to create DOS profile and policy for a particular server, but i have not changed the defaults as i donot want it start actioning on it right away. I have set the alarm rate to 1 and 2 connections per second for classified and aggregat...

raji_toor by L4 Transporter
  • 7072 Views
  • 8 replies
  • 0 Likes

Routing traffic from branch through HQ to vendor

Currently Im labing a situtation where I'll need to have branch users route to a vendor through HQ via IPsec tunnels. Users at my banch access can acesss Web/HQ services though the HQ firewall, but when accessing the vendor. Logs show from HQ the attempts to the vendor from the branch office. But nothing but incompletes/aged-out. From HQ, I do ...

example.jpg
k.truex by L1 Bithead
  • 4553 Views
  • 2 replies
  • 0 Likes

Monitoring VPN tunnel status

Hi, I would like to monitor VPN is UP using NAGIOS. I think its necessary configure tunnel monitor for this, right??? what are the options to monitor VPN is UP? and monitor config profile.

BigPalo by L4 Transporter
  • 3391 Views
  • 3 replies
  • 0 Likes

Log s for Firewall generated Traffic

Hello All - I am not seeing logs in the monitor section, when i generte traffic from Paloalto Firewall itself. For example, when I ping 4.2.2.2 from the Firewall, i am not seeing logs showing for. Is it a known behavior? or i missing something? is there anyway to capture the logs showing the traffic generated from firewall like SYSLOG, PING, SN...

How PA 5220 appliance sends netflow packet when configured in HA and Vsys Mode.

How PA 5220 appliance sends NetFlow packet when configured in HA and Vsys Mode. does the firewall find egress interface by looking into routing table for Netflow packets? If it is Yes, So why we need to change service route on PA 5220 appliance, Secondly, As appliance in HA pair so it sends statistics about active firewall only ?? Also would lik...

Link Aggregation - IP addressing

So I configured Link Aggregation on my PA5260 running 8.1. The first pair of links in ae1.8 comes up perfectly using 192.168.255.3/25 as the IP address. The second pair of links in ae2.9, however, refuse to respond on 192.168.255.131/25. The second pair is in a different security zone and there are no policies in place to block the ping requests...

PaloAlo ports not coming up!

Hi, I am configuring some new PA850s and interfaces are set to Vwire mode. ports are connected to cisco switch but they are not coming up. they come up and go down. here are settings from cisco side:speed 1000duplex fullno mdix auto paloalto ports:speed 1000 and everything auto. Can you please help? Regards,

qasim02 by L2 Linker
  • 9404 Views
  • 7 replies
  • 0 Likes

Importing Logdb into different devices

I'm trying to import logdb coming from a PA-2050 to a smaller devices like VM-100, PA-200 or PA-500 but without any luck. Has anyone successfully tried this operation?The command scp import logdb from ... seems ok but in the end no data is shown under Monitor > Traffic page.Importing the exported logdb into the same units, after a factory res...

NGS_SOC by L3 Networker
  • 4945 Views
  • 2 replies
  • 0 Likes

MineMeld can not get O365 JSON format list

[Failure event]In the case of O365 's xml format, when MineMeld received traffic after ClientHello, I got a list but if I set config for JSON support I can not get a list. [Prerequisites]MineMeld will go through Paloalto and do Internet communication. [Question]I think that the packet flow that can be checked with Paloalto is incorrect.We were a...

Resolved! Implicit web-browsing and ssl

I've noticed that some App-IDs have web-browsing and ssl implicit to the application while others they are dependencies. Is there a reason for this?Are the App-IDs being updated to make these 2 applications implicit? For instance, I'm setting up firewall policies for both teamviewer and Office 365. There are many more but I'm using these two ju...

  • 24332 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks